[Bro-Dev] [JIRA] (BIT-1214) Updating Root CAs used for ssl.log

Tue Jul 8 21:59:07 PDT 2014

Robert W created BIT-1214:
-----------------------------

             Summary: Updating Root CAs used for ssl.log
                 Key: BIT-1214
                 URL: https://bro-tracker.atlassian.net/browse/BIT-1214
             Project: Bro Issue Tracker
          Issue Type: Task
          Components: Bro
         Environment: Running on RHEL 6.5
            Reporter: Robert W

Need assistance confirming how to update the root CAs that Bro uses for the ssl.log. When list of websites are visited from the logs that have used a self-signed cert but within that list a number of sites are actually trusted. I found some documentation that states you need to take a DER formatted version of your root public key and convert it to Bro's hex string, etc. 

http://comments.gmane.org/gmane.comp.security.detection.bro/4117

Could you confirm the steps to take to resolve this specific issue? I am trying to ensure there isn't a specific location in a local config that will allow me to set the path. Please advise if you need any additional information. 

--
This message was sent by Atlassian JIRA
(v6.3-OD-08-005-WN#6328)